Harness cutting-edge technology and the Secureworks Counter Threat Unit™ (CTU™) Research Team to analyze and prioritize global and targeted threats to assist you so you in proactively preventing security attacks.

Summary

A vulnerability exists in Imperva SecureSphere due to improper sanitization of the "username" field in the Violations Table. Malicious content is not properly sanitized before being stored and is later returned to an administrator in dynamically generated web content. Remote attackers could leverage this vulnerability to conduct persistent cross-site scripting attacks. When a user navigates to the Violations page within the SecureSphere administrative GUI, the content of the "username" field is loaded into the affected JavaScript array and is executed in the user's browser session. Successful exploitation may aid an attacker in retrieving session cookies, stealing recently submitted data, or launching further attacks.